Data & Information Security Analyst FTC

Ryder Reid
Wolverhampton, United Kingdom
19 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Wolverhampton, United Kingdom

Tech stack

Software System Penetration Testing
Computer Security
Digital Assets
Security Information and Event Management
Vulnerability Analysis

Job description

An established, full-service organisation with a national footprint is seeking a Data & Information Security Analyst to join its Compliance and IT functions on an 18-month fixed-term contract. This is a key role responsible for protecting the firm's digital assets, maintaining security accreditations, and supporting a strong culture of information security across the business., Working across both Compliance and IT, the successful candidate will play a central part in monitoring, analysing and escalating security incidents, as well as implementing and maintaining controls aligned to ISO 27001:2022 and Cyber Essentials. You will collaborate closely with internal teams and external partners to ensure the organisation's systems, data and processes remain secure, resilient and compliant., * Monitor networks and systems for suspicious activity and potential breaches.

  • Investigate and escalate security incidents, ensuring timely and effective responses.
  • Document incidents with clear analysis and remediation actions.
  • Conduct vulnerability assessments and monthly endpoint security checks.
  • Coordinate penetration testing (physical and black-box) to identify risks.
  • Work with IT teams to ensure remediation actions are implemented.
  • Develop and maintain security policies, procedures and standards.
  • Deliver security awareness training and promote a strong security culture.
  • Stay informed on emerging technologies and recommend improvements.
  • Support data gathering for Data Subject Access Requests.
  • Conduct internal audits aligned to ISO 27001 requirements.

Requirements

  • Strong knowledge of ISO 27001:2022.
  • 3+ years' experience in a similar role with a relevant degree, or 5+ years' industry experience.
  • Experience within the legal or professional services sector.
  • Relevant certifications such as CISSP, CISM or CompTIA Security+.
  • Knowledge of NIST, UK GDPR and Cyber Essentials.
  • Proficiency with security tools (XDR, EDR, SIEM).
  • Strong communication and teamwork skills.
  • Ability to prioritise workloads and meet deadlines.
  • Proactive, service-oriented approach with enthusiasm for continuous improvement.

Apply for this position